$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dfd7f6d3-e6e9-4987-9ae7-d052c5353898/ef566134-dc37-415a-a1e3-05f23305a92b.roa File: ef566134-dc37-415a-a1e3-05f23305a92b.roa (raw, json) Hash identifier: PejkuQe11e5Uh3bLIw766DouyxUwWdLencajOUdsgzA= Subject key identifier: 7F:AD:12:90:13:A1:D1:54:CE:75:1A:2A:14:7B:69:92:33:DE:AA:DC Certificate issuer: /CN=0ee4583d84d9b4f0824cb80ba8fc1240b4794b515071e9751d Certificate serial: 1CB8A2AF742436A861D35CF45E86B48C8D75E69A Authority key identifier: 7D:84:47:C4:97:8A:0B:4C:73:9B:EB:F6:92:E2:4C:75:DD:3F:BC:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/b4e4fec5-3510-4017-90ef-8391412ecd6c/0ee4583d84d9b4f0824cb80ba8fc1240b4794b515071e9751d.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dfd7f6d3-e6e9-4987-9ae7-d052c5353898/ef566134-dc37-415a-a1e3-05f23305a92b.roa Signing time: Tue 04 Nov 2025 00:10:06 +0000 ROA not before: Tue 04 Nov 2025 00:10:06 +0000 ROA not after: Tue 09 Dec 2025 23:59:59 +0000 asID: 7224 IP address blocks: 172.96.104.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dfd7f6d3-e6e9-4987-9ae7-d052c5353898/2bTwgky4C6j8EkC0eUtRUHHpdR0.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dfd7f6d3-e6e9-4987-9ae7-d052c5353898/2bTwgky4C6j8EkC0eUtRUHHpdR0.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/b4e4fec5-3510-4017-90ef-8391412ecd6c/0ee4583d84d9b4f0824cb80ba8fc1240b4794b515071e9751d.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/b4e4fec5-3510-4017-90ef-8391412ecd6c/b4e4fec5-3510-4017-90ef-8391412ecd6c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/b4e4fec5-3510-4017-90ef-8391412ecd6c/b4e4fec5-3510-4017-90ef-8391412ecd6c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/b4e4fec5-3510-4017-90ef-8391412ecd6c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 05 Nov 2025 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1c:b8:a2:af:74:24:36:a8:61:d3:5c:f4:5e:86:b4:8c:8d:75:e6:9a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0ee4583d84d9b4f0824cb80ba8fc1240b4794b515071e9751d Validity Not Before: Nov 4 00:10:06 2025 GMT Not After : Dec 9 23:59:59 2025 GMT Subject: serialNumber=37f2e39186d39705b156908b7c7d28356adad5f77d06baa887e6736dfcb9a67b, CN=b0dbbb6a-5472-4b68-ae4d-401518603039 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:d3:74:bd:f1:41:57:68:3e:2c:bf:de:da:3c: 85:79:68:c4:77:29:99:5f:d7:de:3a:d1:8c:26:da: 7f:f3:d3:f2:0f:f7:a0:6d:ed:4e:e0:3f:13:78:69: 33:e2:06:f8:9b:79:80:13:88:94:f1:32:2f:49:c0: 4a:80:a3:4f:f0:c1:75:a7:bc:8f:c5:e1:2a:e5:0e: 57:53:54:7c:a0:ab:d4:2a:64:8d:f3:53:2a:7b:fa: bd:bc:34:7b:bb:4e:d5:8a:a1:fc:8b:d3:d2:16:0d: 71:f5:0d:1b:5e:45:6a:95:cc:86:eb:fb:9f:c8:95: ce:6f:05:fe:23:4d:ab:6c:fa:12:f6:b1:9a:a2:1c: 4a:88:96:48:2c:a6:5b:a1:f2:e9:2f:07:74:99:c7: 96:ad:36:f6:0e:7e:21:38:db:5e:46:a4:a9:57:58: d1:1a:52:af:60:c5:9f:62:7d:fd:8a:c1:d9:33:06: ee:5e:7c:a2:ee:ee:94:32:14:f3:68:80:1c:29:a7: 00:67:f9:f6:9d:17:bb:d5:96:01:d2:e0:8d:d5:d4: 17:83:43:13:fd:69:72:64:72:69:cb:3c:73:2a:cd: 9e:61:42:d9:60:dc:d2:e8:bf:01:3e:42:4a:e3:2e: 1f:8f:d9:ef:08:68:8c:2c:52:6d:16:c3:35:ba:ef: c1:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:AD:12:90:13:A1:D1:54:CE:75:1A:2A:14:7B:69:92:33:DE:AA:DC X509v3 Authority Key Identifier: keyid:7D:84:47:C4:97:8A:0B:4C:73:9B:EB:F6:92:E2:4C:75:DD:3F:BC:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/b4e4fec5-3510-4017-90ef-8391412ecd6c/0ee4583d84d9b4f0824cb80ba8fc1240b4794b515071e9751d.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dfd7f6d3-e6e9-4987-9ae7-d052c5353898/ef566134-dc37-415a-a1e3-05f23305a92b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dfd7f6d3-e6e9-4987-9ae7-d052c5353898/2bTwgky4C6j8EkC0eUtRUHHpdR0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 172.96.104.0/21 Signature Algorithm: sha256WithRSAEncryption 55:b2:2a:2d:3c:cf:cc:dd:f8:36:eb:77:c1:8a:3e:fe:e2:f4: 39:2b:1d:6c:33:94:6f:a2:b6:55:d1:23:0e:a0:3e:83:7c:18: bb:ea:04:0e:ef:09:ad:1f:47:1f:d8:15:62:4c:43:ab:f6:0c: 2f:70:dc:aa:b7:a9:73:fe:69:a7:cc:b5:a8:29:99:09:e1:6b: c4:b6:44:61:b7:cd:a6:d1:53:0b:dd:6c:30:5a:bd:7f:03:1a: be:81:11:66:a3:91:ef:29:1d:b5:93:72:8c:87:fd:55:eb:ea: f2:8b:ec:10:f5:8a:c7:ca:9b:d5:b8:bd:6b:9e:44:3b:1b:b6: bd:bb:d5:13:c5:6e:83:5a:08:65:4b:43:93:59:4a:c8:4e:39: e8:e1:05:7c:98:3d:bd:4d:8b:42:0b:2b:c3:ec:c3:6d:80:8b: 88:b3:70:72:8b:a1:bc:94:3f:09:a9:9a:41:07:98:6c:c5:0a: a9:5a:6b:81:c1:5f:29:5a:a2:6b:ea:ea:d6:a4:17:a4:ca:16: 30:96:5c:81:1b:cf:94:57:c5:5c:e8:13:aa:88:97:07:7d:24: 74:b6:dc:4e:58:66:47:58:8e:a5:a4:51:91:7b:f3:ea:4c:a3: e0:d3:b2:6a:c8:c2:b5:36:5e:5f:da:55:c6:bb:ac:a4:ce:c0: e7:8f:f7:70 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUHLiir3QkNqhh01z0Xoa0jI115powDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyMGVlNDU4M2Q4NGQ5YjRmMDgyNGNiODBiYThmYzEyNDBi NDc5NGI1MTUwNzFlOTc1MWQwHhcNMjUxMTA0MDAxMDA2WhcNMjUxMjA5MjM1OTU5 WjB6MUkwRwYDVQQFE0AzN2YyZTM5MTg2ZDM5NzA1YjE1NjkwOGI3YzdkMjgzNTZh ZGFkNWY3N2QwNmJhYTg4N2U2NzM2ZGZjYjlhNjdiMS0wKwYDVQQDEyRiMGRiYmI2 YS01NDcyLTRiNjgtYWU0ZC00MDE1MTg2MDMwMzkwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC303S98UFXaD4sv97aPIV5aMR3KZlf19460Ywm2n/z0/IP 96Bt7U7gPxN4aTPiBvibeYATiJTxMi9JwEqAo0/wwXWnvI/F4SrlDldTVHygq9Qq ZI3zUyp7+r28NHu7TtWKofyL09IWDXH1DRteRWqVzIbr+5/Ilc5vBf4jTats+hL2 sZqiHEqIlkgspluh8ukvB3SZx5atNvYOfiE4215GpKlXWNEaUq9gxZ9iff2Kwdkz Bu5efKLu7pQyFPNogBwppwBn+fadF7vVlgHS4I3V1BeDQxP9aXJkcmnLPHMqzZ5h Qtlg3NLovwE+QkrjLh+P2e8IaIwsUm0WwzW678HrAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUf60SkBOh0VTOdRoqFHtpkjPeqtwwHwYDVR0jBBgwFoAUfYRHxJeKC0xz m+v2kuJMdd0/vK4wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS9iNGU0ZmVjNS0z NTEwLTQwMTctOTBlZi04MzkxNDEyZWNkNmMvMGVlNDU4M2Q4NGQ5YjRmMDgyNGNi ODBiYThmYzEyNDBiNDc5NGI1MTUwNzFlOTc1MWQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZGZkN2Y2ZDMtZTZlOS00OTg3LTlhZTctZDA1 MmM1MzUzODk4L2VmNTY2MTM0LWRjMzctNDE1YS1hMWUzLTA1ZjIzMzA1YTkyYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2RmZDdmNmQzLWU2ZTktNDk4Ny05YWU3 LWQwNTJjNTM1Mzg5OC8yYlR3Z2t5NEM2ajhFa0MwZVV0UlVISHBkUjAuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAOsYGgwDQYJKoZIhvcNAQELBQADggEBAFWyKi08z8zd+Dbrd8GKPv7i9Dkr HWwzlG+itlXRIw6gPoN8GLvqBA7vCa0fRx/YFWJMQ6v2DC9w3Kq3qXP+aafMtagp mQnha8S2RGG3zabRUwvdbDBavX8DGr6BEWajke8pHbWTcoyH/VXr6vKL7BD1isfK m9W4vWueRDsbtr271RPFboNaCGVLQ5NZSshOOejhBXyYPb1Ni0ILK8Psw22Ai4iz cHKLobyUPwmpmkEHmGzFCqlaa4HBXylaomvq6takF6TKFjCWXIEbz5RXxVzoE6qI lwd9JHS23E5YZkdYjqWkUZF78+pMo+DTsmrIwrU2Xl/aVca7rKTOwOeP93A= -----END CERTIFICATE-----Generated at Tue Nov 4 21:19:24 2025 by rpki-client